199b210629b83da2923e0b2826c73f3d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

199b210629b83da2923e0b2826c73f3d
Size

357KB
MD5

199b210629b83da2923e0b2826c73f3d
SHA1

d76e0ac0ef84d7c3f81b24ab1492c9542a83aba3
SHA256

cf7cbfb7b6df393630c1fc4caae342cf7a8c16f1aec147d562632ff99aa79414
SHA512

2afa8ba250a58c62f937eb3940fdf50bc46a611cf8d346d3d2c0042be9996df3cf0cb6410f5a80bf5f9f3e0f7d8d3d6423c7477b049a927d25a1a70f061b0160
SSDEEP

6144:P+fLJd6AT9N7rFcX8Wx2u9GC+EjhvGhc1zudfVh9M9soUvJm:P+DJEENo9GC+xctWdh9MZz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
199b210629b83da2923e0b2826c73f3d

Files

199b210629b83da2923e0b2826c73f3d
.exe windows:4 windows x86 arch:x86

65b6862e9898b195f4ef7a1685fd82dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvcrt

memset

comctl32

InitCommonControls

user32

MessageBoxA

shell32

ShellExecuteExA

ole32

CoInitialize

Sections

.
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE